npm - @adatechnology/auth-keycloak - Versions diffs - 0.0.3 → 0.0.6 - Mend

@adatechnology/auth-keycloak 0.0.3 → 0.0.6

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (28) hide show

package/dist/index.d.ts +114 -6
package/dist/index.js +743 -16
package/package.json +6 -6
package/dist/errors/keycloak-error.d.ts +0 -11
package/dist/errors/keycloak-error.js +0 -20
package/dist/errors/keycloak-error.js.map +0 -1
package/dist/index.js.map +0 -1
package/dist/keycloak.client.d.ts +0 -27
package/dist/keycloak.client.js +0 -320
package/dist/keycloak.client.js.map +0 -1
package/dist/keycloak.http.interceptor.d.ts +0 -9
package/dist/keycloak.http.interceptor.js +0 -37
package/dist/keycloak.http.interceptor.js.map +0 -1
package/dist/keycloak.interface.d.ts +0 -74
package/dist/keycloak.interface.js +0 -3
package/dist/keycloak.interface.js.map +0 -1
package/dist/keycloak.module.d.ts +0 -6
package/dist/keycloak.module.js +0 -63
package/dist/keycloak.module.js.map +0 -1
package/dist/keycloak.token.d.ts +0 -3
package/dist/keycloak.token.js +0 -7
package/dist/keycloak.token.js.map +0 -1
package/dist/roles.decorator.d.ts +0 -19
package/dist/roles.decorator.js +0 -34
package/dist/roles.decorator.js.map +0 -1
package/dist/roles.guard.d.ts +0 -10
package/dist/roles.guard.js +0 -103
package/dist/roles.guard.js.map +0 -1

package/dist/keycloak.token.d.ts DELETED Viewed

@@ -1,3 +0,0 @@
-export declare const KEYCLOAK_CONFIG = "KEYCLOAK_CONFIG";
-export declare const KEYCLOAK_CLIENT = "KEYCLOAK_CLIENT";
-export declare const KEYCLOAK_HTTP_INTERCEPTOR = "KEYCLOAK_HTTP_INTERCEPTOR";

package/dist/keycloak.token.js DELETED Viewed

@@ -1,7 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.KEYCLOAK_HTTP_INTERCEPTOR = exports.KEYCLOAK_CLIENT = exports.KEYCLOAK_CONFIG = void 0;
-exports.KEYCLOAK_CONFIG = 'KEYCLOAK_CONFIG';
-exports.KEYCLOAK_CLIENT = 'KEYCLOAK_CLIENT';
-exports.KEYCLOAK_HTTP_INTERCEPTOR = 'KEYCLOAK_HTTP_INTERCEPTOR';
-//# sourceMappingURL=keycloak.token.js.map

package/dist/keycloak.token.js.map DELETED Viewed

	@@ -1 +0,0 @@
1	- {"version":3,"file":"keycloak.token.js","sourceRoot":"","sources":["../src/keycloak.token.ts"],"names":[],"mappings":";;;AAAa,QAAA,eAAe,GAAG,iBAAiB,CAAC;AACpC,QAAA,eAAe,GAAG,iBAAiB,CAAC;AACpC,QAAA,yBAAyB,GAAG,2BAA2B,CAAC"}

package/dist/roles.decorator.d.ts DELETED Viewed

@@ -1,19 +0,0 @@
-export declare const ROLES_META_KEY = "roles";
-export type RolesMode = "any" | "all";
-export type RolesType = "realm" | "client" | "both";
-export type RolesOptions = {
-    roles: string[];
-    mode?: RolesMode;
-    type?: RolesType;
-};
-/**
- * Decorator to declare required roles for a route or controller.
- * Accepts either a list of strings or a single options object.
- * Examples:
- *  @Roles('admin')
- *  @Roles('admin','editor')
- *  @Roles(['admin','editor'])
- *  @Roles({ roles: ['a','b'], mode: 'all', type: 'client' })
- */
-export declare function Roles(...args: Array<string | string[] | RolesOptions>): import("@nestjs/common").CustomDecorator<string>;
-export default Roles;

package/dist/roles.decorator.js DELETED Viewed

@@ -1,34 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.ROLES_META_KEY = void 0;
-exports.Roles = Roles;
-const common_1 = require("@nestjs/common");
-exports.ROLES_META_KEY = "roles";
-/**
- * Decorator to declare required roles for a route or controller.
- * Accepts either a list of strings or a single options object.
- * Examples:
- *  @Roles('admin')
- *  @Roles('admin','editor')
- *  @Roles(['admin','editor'])
- *  @Roles({ roles: ['a','b'], mode: 'all', type: 'client' })
- */
-function Roles(...args) {
-    let payload;
-    if (args.length === 1 &&
-        typeof args[0] === "object" &&
-        !Array.isArray(args[0])) {
-        payload = args[0];
-    }
-    else {
-        // flatten strings/arrays into roles array
-        const roles = [].concat(...args.map((a) => (Array.isArray(a) ? a : String(a))));
-        payload = { roles };
-    }
-    // defaults
-    payload.mode = payload.mode ?? "any";
-    payload.type = payload.type ?? "both";
-    return (0, common_1.SetMetadata)(exports.ROLES_META_KEY, payload);
-}
-exports.default = Roles;
-//# sourceMappingURL=roles.decorator.js.map

package/dist/roles.decorator.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"roles.decorator.js","sourceRoot":"","sources":["../src/roles.decorator.ts"],"names":[],"mappings":";;;AAsBA,sBAsBC;AA5CD,2CAA6C;AAEhC,QAAA,cAAc,GAAG,OAAO,CAAC;AAWtC;;;;;;;;GAQG;AACH,SAAgB,KAAK,CAAC,GAAG,IAA6C;IACpE,IAAI,OAAqB,CAAC;IAE1B,IACE,IAAI,CAAC,MAAM,KAAK,CAAC;QACjB,OAAO,IAAI,CAAC,CAAC,CAAC,KAAK,QAAQ;QAC3B,CAAC,KAAK,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,CAAC,EACvB,CAAC;QACD,OAAO,GAAG,IAAI,CAAC,CAAC,CAAiB,CAAC;IACpC,CAAC;SAAM,CAAC;QACN,0CAA0C;QAC1C,MAAM,KAAK,GAAc,EAAe,CAAC,MAAM,CAC7C,GAAI,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAc,CACrE,CAAC;QACF,OAAO,GAAG,EAAE,KAAK,EAAE,CAAC;IACtB,CAAC;IAED,WAAW;IACX,OAAO,CAAC,IAAI,GAAG,OAAO,CAAC,IAAI,IAAI,KAAK,CAAC;IACrC,OAAO,CAAC,IAAI,GAAG,OAAO,CAAC,IAAI,IAAI,MAAM,CAAC;IAEtC,OAAO,IAAA,oBAAW,EAAC,sBAAc,EAAE,OAAO,CAAC,CAAC;AAC9C,CAAC;AAED,kBAAe,KAAK,CAAC"}

package/dist/roles.guard.d.ts DELETED Viewed

@@ -1,10 +0,0 @@
-import { CanActivate, ExecutionContext } from "@nestjs/common";
-import { Reflector } from "@nestjs/core";
-import type { KeycloakConfig } from "./keycloak.interface";
-export declare class RolesGuard implements CanActivate {
-    private readonly reflector;
-    private readonly config?;
-    constructor(reflector: Reflector, config?: KeycloakConfig);
-    canActivate(context: ExecutionContext): boolean | Promise<boolean>;
-    private decodeJwtPayload;
-}

package/dist/roles.guard.js DELETED Viewed

@@ -1,103 +0,0 @@
-"use strict";
-var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
-    var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
-    if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
-    else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
-    return c > 3 && r && Object.defineProperty(target, key, r), r;
-};
-var __metadata = (this && this.__metadata) || function (k, v) {
-    if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
-};
-var __param = (this && this.__param) || function (paramIndex, decorator) {
-    return function (target, key) { decorator(target, key, paramIndex); }
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.RolesGuard = void 0;
-const common_1 = require("@nestjs/common");
-const core_1 = require("@nestjs/core");
-const roles_decorator_1 = require("./roles.decorator");
-const keycloak_token_1 = require("./keycloak.token");
-const shared_1 = require("@adatechnology/shared");
-let RolesGuard = class RolesGuard {
-    reflector;
-    config;
-    constructor(reflector, config) {
-        this.reflector = reflector;
-        this.config = config;
-    }
-    canActivate(context) {
-        const meta = this.reflector.get(roles_decorator_1.ROLES_META_KEY, context.getHandler()) ||
-            this.reflector.get(roles_decorator_1.ROLES_META_KEY, context.getClass());
-        if (!meta || !meta.roles || meta.roles.length === 0)
-            return true;
-        const req = context.switchToHttp().getRequest();
-        const authHeader = req.headers?.authorization || req.headers?.Authorization;
-        const token = authHeader
-            ? String(authHeader).split(" ")[1]
-            : req.query?.token;
-        if (!token)
-            throw new shared_1.BaseAppError({
-                message: "Authorization token not provided",
-                status: 403,
-                code: "FORBIDDEN_MISSING_TOKEN",
-                context: {},
-            });
-        const payload = this.decodeJwtPayload(token);
-        const availableRoles = new Set();
-        // realm roles
-        if (payload?.realm_access?.roles &&
-            Array.isArray(payload.realm_access.roles)) {
-            payload.realm_access.roles.forEach((r) => availableRoles.add(r));
-        }
-        // client roles (resource_access)
-        const clientId = this.config?.credentials?.clientId;
-        if (clientId && payload?.resource_access?.[clientId]?.roles) {
-            payload.resource_access[clientId].roles.forEach((r) => availableRoles.add(r));
-        }
-        // also consider all client roles if type is 'both' and resource_access exists
-        if (meta.type === "both" && payload?.resource_access) {
-            Object.values(payload.resource_access).forEach((entry) => {
-                if (entry?.roles && Array.isArray(entry.roles)) {
-                    entry.roles.forEach((r) => availableRoles.add(r));
-                }
-            });
-        }
-        // matching
-        const required = meta.roles || [];
-        const hasMatch = required.map((r) => availableRoles.has(r));
-        const result = meta.mode === "all" ? hasMatch.every(Boolean) : hasMatch.some(Boolean);
-        if (!result)
-            throw new shared_1.BaseAppError({
-                message: "Insufficient roles",
-                status: 403,
-                code: "FORBIDDEN_INSUFFICIENT_ROLES",
-                context: { required: required },
-            });
-        return true;
-    }
-    decodeJwtPayload(token) {
-        try {
-            const parts = token.split(".");
-            if (parts.length < 2)
-                return {};
-            const payload = parts[1];
-            const BufferCtor = globalThis.Buffer;
-            if (!BufferCtor)
-                return {};
-            const decoded = BufferCtor.from(payload, "base64").toString("utf8");
-            return JSON.parse(decoded);
-        }
-        catch (e) {
-            return {};
-        }
-    }
-};
-exports.RolesGuard = RolesGuard;
-exports.RolesGuard = RolesGuard = __decorate([
-    (0, common_1.Injectable)(),
-    __param(0, (0, common_1.Inject)(core_1.Reflector)),
-    __param(1, (0, common_1.Optional)()),
-    __param(1, (0, common_1.Inject)(keycloak_token_1.KEYCLOAK_CONFIG)),
-    __metadata("design:paramtypes", [core_1.Reflector, Object])
-], RolesGuard);
-//# sourceMappingURL=roles.guard.js.map

package/dist/roles.guard.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"roles.guard.js","sourceRoot":"","sources":["../src/roles.guard.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;AAAA,2CAMwB;AACxB,uCAAyC;AACzC,uDAAiE;AACjE,qDAAmD;AAGnD,kDAAqD;AAG9C,IAAM,UAAU,GAAhB,MAAM,UAAU;IAGF;IAGA;IALnB,YAEmB,SAAoB,EAGpB,MAAuB;QAHvB,cAAS,GAAT,SAAS,CAAW;QAGpB,WAAM,GAAN,MAAM,CAAiB;IACvC,CAAC;IAEJ,WAAW,CAAC,OAAyB;QACnC,MAAM,IAAI,GACR,IAAI,CAAC,SAAS,CAAC,GAAG,CAAe,gCAAc,EAAE,OAAO,CAAC,UAAU,EAAE,CAAC;YACtE,IAAI,CAAC,SAAS,CAAC,GAAG,CAAe,gCAAc,EAAE,OAAO,CAAC,QAAQ,EAAE,CAAC,CAAC;QAEvE,IAAI,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,KAAK,CAAC,MAAM,KAAK,CAAC;YAAE,OAAO,IAAI,CAAC;QAEjE,MAAM,GAAG,GAAG,OAAO,CAAC,YAAY,EAAE,CAAC,UAAU,EAAE,CAAC;QAChD,MAAM,UAAU,GAAG,GAAG,CAAC,OAAO,EAAE,aAAa,IAAI,GAAG,CAAC,OAAO,EAAE,aAAa,CAAC;QAC5E,MAAM,KAAK,GAAG,UAAU;YACtB,CAAC,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC;YAClC,CAAC,CAAC,GAAG,CAAC,KAAK,EAAE,KAAK,CAAC;QAErB,IAAI,CAAC,KAAK;YACR,MAAM,IAAI,qBAAY,CAAC;gBACrB,OAAO,EAAE,kCAAkC;gBAC3C,MAAM,EAAE,GAAG;gBACX,IAAI,EAAE,yBAAyB;gBAC/B,OAAO,EAAE,EAAE;aACZ,CAAC,CAAC;QAEL,MAAM,OAAO,GAAG,IAAI,CAAC,gBAAgB,CAAC,KAAK,CAAC,CAAC;QAE7C,MAAM,cAAc,GAAG,IAAI,GAAG,EAAU,CAAC;QAEzC,cAAc;QACd,IACE,OAAO,EAAE,YAAY,EAAE,KAAK;YAC5B,KAAK,CAAC,OAAO,CAAC,OAAO,CAAC,YAAY,CAAC,KAAK,CAAC,EACzC,CAAC;YACD,OAAO,CAAC,YAAY,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QAC3E,CAAC;QAED,iCAAiC;QACjC,MAAM,QAAQ,GAAG,IAAI,CAAC,MAAM,EAAE,WAAW,EAAE,QAAQ,CAAC;QACpD,IAAI,QAAQ,IAAI,OAAO,EAAE,eAAe,EAAE,CAAC,QAAQ,CAAC,EAAE,KAAK,EAAE,CAAC;YAC5D,OAAO,CAAC,eAAe,CAAC,QAAQ,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAS,EAAE,EAAE,CAC5D,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,CACtB,CAAC;QACJ,CAAC;QAED,8EAA8E;QAC9E,IAAI,IAAI,CAAC,IAAI,KAAK,MAAM,IAAI,OAAO,EAAE,eAAe,EAAE,CAAC;YACrD,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,eAAe,CAAC,CAAC,OAAO,CAAC,CAAC,KAAK,EAAE,EAAE;gBACvD,IAAI,KAAK,EAAE,KAAK,IAAI,KAAK,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,CAAC,EAAE,CAAC;oBAC9C,KAAK,CAAC,KAAkB,CAAC,OAAO,CAAC,CAAC,CAAS,EAAE,EAAE,CAC9C,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,CACtB,CAAC;gBACJ,CAAC;YACH,CAAC,CAAC,CAAC;QACL,CAAC;QAED,WAAW;QACX,MAAM,QAAQ,GAAG,IAAI,CAAC,KAAK,IAAI,EAAE,CAAC;QAClC,MAAM,QAAQ,GAAG,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,EAAE,EAAE,CAAC,cAAc,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC;QAE5D,MAAM,MAAM,GACV,IAAI,CAAC,IAAI,KAAK,KAAK,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,IAAI,CAAC,OAAO,CAAC,CAAC;QAEzE,IAAI,CAAC,MAAM;YACT,MAAM,IAAI,qBAAY,CAAC;gBACrB,OAAO,EAAE,oBAAoB;gBAC7B,MAAM,EAAE,GAAG;gBACX,IAAI,EAAE,8BAA8B;gBACpC,OAAO,EAAE,EAAE,QAAQ,EAAE,QAAQ,EAAE;aAChC,CAAC,CAAC;QAEL,OAAO,IAAI,CAAC;IACd,CAAC;IAEO,gBAAgB,CAAC,KAAa;QACpC,IAAI,CAAC;YACH,MAAM,KAAK,GAAG,KAAK,CAAC,KAAK,CAAC,GAAG,CAAC,CAAC;YAC/B,IAAI,KAAK,CAAC,MAAM,GAAG,CAAC;gBAAE,OAAO,EAAE,CAAC;YAChC,MAAM,OAAO,GAAG,KAAK,CAAC,CAAC,CAAC,CAAC;YACzB,MAAM,UAAU,GACd,UAQD,CAAC,MAAM,CAAC;YACT,IAAI,CAAC,UAAU;gBAAE,OAAO,EAAE,CAAC;YAC3B,MAAM,OAAO,GAAG,UAAU,CAAC,IAAI,CAAC,OAAO,EAAE,QAAQ,CAAC,CAAC,QAAQ,CAAC,MAAM,CAAC,CAAC;YACpE,OAAO,IAAI,CAAC,KAAK,CAAC,OAAO,CAAuB,CAAC;QACnD,CAAC;QAAC,OAAO,CAAC,EAAE,CAAC;YACX,OAAO,EAAE,CAAC;QACZ,CAAC;IACH,CAAC;CACF,CAAA;AArGY,gCAAU;qBAAV,UAAU;IADtB,IAAA,mBAAU,GAAE;IAGR,WAAA,IAAA,eAAM,EAAC,gBAAS,CAAC,CAAA;IAEjB,WAAA,IAAA,iBAAQ,GAAE,CAAA;IACV,WAAA,IAAA,eAAM,EAAC,gCAAe,CAAC,CAAA;qCAFI,gBAAS;GAH5B,UAAU,CAqGtB"}